JetBrains YouTrack prior 2020.6.1099 Project information disclosure

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in JetBrains YouTrack and classified as problematic. This issue affects an unknown function of the component Project Handler. Upgrading to version 2020.6.1099 eliminates this vulnerability.

Field	02/04/2021 10:24 AM	02/23/2021 12:44 PM
vendor	JetBrains	JetBrains
name	YouTrack	YouTrack
component	Project Handler	Project Handler
cwe	200 (information disclosure)	200 (information disclosure)
risk	1	1
cvss3_vuldb_c	L	L
cvss3_vuldb_i	N	N
cvss3_vuldb_a	N	N
cvss3_vuldb_rl	O	O
cvss3_vuldb_rc	C	C
url	https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020/	https://blog.jetbrains.com/blog/2021/02/03/jetbrains-security-bulletin-q4-2020/
name	Upgrade	Upgrade
upgrade_version	2020.6.1099	2020.6.1099
cve	CVE-2021-25771	CVE-2021-25771
date	1612393200 (02/04/2021)	1612393200 (02/04/2021)
cvss2_vuldb_ci	P	P
cvss2_vuldb_ii	N	N
cvss2_vuldb_ai	N	N
cvss2_vuldb_rc	C	C
cvss2_vuldb_rl	OF	OF
cvss2_vuldb_av	A	A
cvss2_vuldb_ac	M	M
cvss2_vuldb_au	S	S
cvss2_vuldb_e	ND	ND
cvss3_vuldb_av	A	A
cvss3_vuldb_ac	L	L
cvss3_vuldb_pr	L	L
cvss3_vuldb_ui	N	N
cvss3_vuldb_s	U	U
cvss3_vuldb_e	X	X
cvss2_vuldb_basescore	2.3	2.3
cvss2_vuldb_tempscore	2.3	2.0
cvss3_vuldb_basescore	3.5	3.5
cvss3_vuldb_tempscore	3.5	3.4
cvss3_meta_basescore	3.5	3.5
cvss3_meta_tempscore	3.5	3.4
price_0day	$0-$5k	$0-$5k
cve_assigned		1611183600
cve_nvd_summary		In JetBrains YouTrack before 2020.6.1099, project information could be potentially disclosed.

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!